Can the new Token Protection policy in Conditional Access be used for Azure Virtual Desktops?

Everett Porter 0 Reputation points

From my understanding of this policy, the token is securely bound to the hardware to secure the account. That secured token checks the hardware before allowing access to Azure resources. Based on that understanding, using an Azure Virtual Desktop created from an Image Server would break that trust with each newly spawned host.

Is there a way to configure the Token Protection policy to work with AVD's?

Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,449 questions
{count} votes

1 answer

Sort by: Most helpful
  1. vipullag-MSFT 25,941 Reputation points

    Hello Everett Crane

    Firstly, apologies for the delay in responding here. I checked with internal team on this ask.

    This is not officially supported. It would not work in pooled scenarios, as the user is not registering the session host as his device.

    Please raise feature request here so that the product team can check on this

    Hope this helps.

    0 comments No comments